2016-12-12 05:41:11 +01:00
|
|
|
<?php
|
|
|
|
|
namespace Psalm\Tests;
|
|
|
|
|
|
|
|
|
|
use PhpParser\ParserFactory;
|
|
|
|
|
use PHPUnit_Framework_TestCase;
|
|
|
|
|
use Psalm\Checker\FileChecker;
|
|
|
|
|
use Psalm\Config;
|
|
|
|
|
use Psalm\Context;
|
|
|
|
|
|
|
|
|
|
class ForbiddenCodeTest extends PHPUnit_Framework_TestCase
|
|
|
|
|
{
|
2016-12-14 18:55:23 +01:00
|
|
|
/** @var \PhpParser\Parser */
|
2016-12-12 05:41:11 +01:00
|
|
|
protected static $parser;
|
|
|
|
|
|
2017-01-02 21:31:18 +01:00
|
|
|
/** @var \Psalm\Checker\ProjectChecker */
|
|
|
|
|
protected $project_checker;
|
|
|
|
|
|
2017-01-13 20:07:23 +01:00
|
|
|
/**
|
|
|
|
|
* @return void
|
|
|
|
|
*/
|
2016-12-12 05:41:11 +01:00
|
|
|
public static function setUpBeforeClass()
|
|
|
|
|
{
|
|
|
|
|
self::$parser = (new ParserFactory)->create(ParserFactory::PREFER_PHP7);
|
|
|
|
|
|
2016-12-14 18:28:38 +01:00
|
|
|
$config = new TestConfig();
|
2016-12-12 05:41:11 +01:00
|
|
|
}
|
|
|
|
|
|
2017-01-13 20:07:23 +01:00
|
|
|
/**
|
|
|
|
|
* @return void
|
|
|
|
|
*/
|
2016-12-12 05:41:11 +01:00
|
|
|
public function setUp()
|
|
|
|
|
{
|
|
|
|
|
FileChecker::clearCache();
|
2017-01-02 21:31:18 +01:00
|
|
|
$this->project_checker = new \Psalm\Checker\ProjectChecker();
|
2016-12-12 05:41:11 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
2017-01-13 20:07:23 +01:00
|
|
|
* @expectedException \Psalm\Exception\CodeException
|
2016-12-12 05:41:11 +01:00
|
|
|
* @expectedExceptionMessage ForbiddenCode
|
2017-01-13 20:07:23 +01:00
|
|
|
* @return void
|
2016-12-12 05:41:11 +01:00
|
|
|
*/
|
|
|
|
|
public function testVarDump()
|
|
|
|
|
{
|
|
|
|
|
$stmts = self::$parser->parse('<?php
|
|
|
|
|
var_dump("hello");
|
|
|
|
|
');
|
|
|
|
|
|
2017-01-02 21:31:18 +01:00
|
|
|
$file_checker = new FileChecker('somefile.php', $this->project_checker, $stmts);
|
2016-12-12 05:41:11 +01:00
|
|
|
$context = new Context('somefile.php');
|
2017-01-07 21:09:47 +01:00
|
|
|
$file_checker->visitAndAnalyzeMethods($context);
|
2016-12-12 05:41:11 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
2017-01-13 20:07:23 +01:00
|
|
|
* @expectedException \Psalm\Exception\CodeException
|
2016-12-12 05:41:11 +01:00
|
|
|
* @expectedExceptionMessage ForbiddenCode
|
2017-01-13 20:07:23 +01:00
|
|
|
* @return void
|
2016-12-12 05:41:11 +01:00
|
|
|
*/
|
|
|
|
|
public function testExecTicks()
|
|
|
|
|
{
|
|
|
|
|
$stmts = self::$parser->parse('<?php
|
|
|
|
|
`rm -rf`;
|
|
|
|
|
');
|
|
|
|
|
|
2017-01-02 21:31:18 +01:00
|
|
|
$file_checker = new FileChecker('somefile.php', $this->project_checker, $stmts);
|
2016-12-12 05:41:11 +01:00
|
|
|
$context = new Context('somefile.php');
|
2017-01-07 21:09:47 +01:00
|
|
|
$file_checker->visitAndAnalyzeMethods($context);
|
2016-12-12 05:41:11 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
2017-01-13 20:07:23 +01:00
|
|
|
* @expectedException \Psalm\Exception\CodeException
|
2016-12-12 05:41:11 +01:00
|
|
|
* @expectedExceptionMessage ForbiddenCode
|
2017-01-13 20:07:23 +01:00
|
|
|
* @return void
|
2016-12-12 05:41:11 +01:00
|
|
|
*/
|
|
|
|
|
public function testExec()
|
|
|
|
|
{
|
|
|
|
|
$stmts = self::$parser->parse('<?php
|
|
|
|
|
shell_exec("rm -rf");
|
|
|
|
|
');
|
|
|
|
|
|
2017-01-02 21:31:18 +01:00
|
|
|
$file_checker = new FileChecker('somefile.php', $this->project_checker, $stmts);
|
2016-12-12 05:41:11 +01:00
|
|
|
$context = new Context('somefile.php');
|
2017-01-07 21:09:47 +01:00
|
|
|
$file_checker->visitAndAnalyzeMethods($context);
|
2016-12-12 05:41:11 +01:00
|
|
|
}
|
|
|
|
|
}
|
